Multi-way Encoding for Robustness

被引:0
作者
Kim, Donghyun [1 ]
Bargal, Sarah Adel [1 ]
Zhang, Jianming [2 ]
Sclaroff, Stan [1 ]
机构
[1] Boston Univ, Boston, MA 02215 USA
[2] Adobe Res, San Jose, CA USA
来源
2020 IEEE WINTER CONFERENCE ON APPLICATIONS OF COMPUTER VISION (WACV) | 2020年
关键词
D O I
10.1109/wacv45572.2020.9093609
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Deep models are state-of-the-art for many computer vision tasks including image classification and object detection. However, it has been shown that deep models are vulnerable to adversarial examples. We highlight how one-hot encoding directly contributes to this vulnerability and propose breaking away from this widely-used, but highly-vulnerable mapping. We demonstrate that by leveraging a different output encoding, multi-way encoding, we decorrelate source and target models, making target models more secure. Our approach makes it more difficult for adversaries to find useful gradients for generating adversarial attacks. We present robustness for black-box and white-box attacks on four benchmark datasets: MNIST, CIFAR-10, CIFAR-100, and SVHN. The strength of our approach is also presented in the form of an attack for model watermarking, raising challenges in detecting stolen models.
引用
收藏
页码:1341 / 1349
页数:9
相关论文
共 50 条
[21]   A MOTORIZED MULTI-WAY PERFUSION VALVE [J].
MATTHEWS, HR .
JOURNAL OF PHYSIOLOGY-LONDON, 1989, 410 :P3-P3
[22]   Accelerating multi-way joins on the GPU [J].
Lai, Zhuohang ;
Sun, Xibo ;
Luo, Qiong ;
Xie, Xiaolong .
VLDB JOURNAL, 2022, 31 (03) :529-553
[23]   Canonical correlations in multi-way layout [J].
Adam, M ;
Maroulas, J .
ANNALS OF THE INSTITUTE OF STATISTICAL MATHEMATICS, 2004, 56 (04) :655-666
[24]   Partially Local Multi-way Alignments [J].
Retzlaff N. ;
Stadler P.F. .
Mathematics in Computer Science, 2018, 12 (2) :207-234
[25]   ANALYSIS OF MULTI-WAY (MULTI-MODE) DATA [J].
GELADI, P .
CHEMOMETRICS AND INTELLIGENT LABORATORY SYSTEMS, 1989, 7 (1-2) :11-30
[26]   Regenerative Multi-Group Multi-Way Relaying [J].
Amah, Aditya Umbu Tana ;
Klein, Anja .
IEEE TRANSACTIONS ON VEHICULAR TECHNOLOGY, 2011, 60 (07) :3017-3029
[27]   Boosting with multi-way branching in decision trees [J].
Mansour, Y ;
McAllester, D .
ADVANCES IN NEURAL INFORMATION PROCESSING SYSTEMS 12, 2000, 12 :300-306
[28]   Rank tests in heteroscedastic multi-way HANOVA [J].
Wang, Haiyan ;
Akritas, Michael G. .
JOURNAL OF NONPARAMETRIC STATISTICS, 2009, 21 (06) :663-681
[29]   Multi-way optical fibre connectors for astronomy [J].
Haynes, Dionne M. ;
Haynes, Roger ;
Rambold, William ;
Goodwin, Michael ;
Penny, Ed J. .
MODERN TECHNOLOGIES IN SPACE- AND GROUND-BASED TELESCOPES AND INSTRUMENTATION, 2010, 7739
[30]   Error Propagation in a Multi-way Relay Channel [J].
Islam, Shama N. ;
Sadeghi, Parastoo .
5TH INTERNATIONAL CONFERENCE ON SIGNAL PROCESSING AND COMMUNICATION SYSTEMS, ICSPCS'2011, 2011,
12345